Security-Feature-Bypass

CWE (Common Weakness Enumeration) is the standardized taxonomy used to classify software and hardware weakness types such as use-after-free, buffer overflow, and security feature bypass. This SECMONS glossary entry explains what CWE represents, how it differs from CVE and CVSS, and how defenders use CWE to understand exploitation patterns and prioritize remediation.

A sandbox escape occurs when an attacker bypasses application isolation mechanisms to execute code outside a restricted environment. This SECMONS glossary entry explains how sandboxing works, how escapes occur, and why sandbox escape vulnerabilities significantly increase exploitation impact.

Security Feature Bypass, commonly mapped to CWE-693 (Protection Mechanism Failure), refers to vulnerabilities that allow attackers to circumvent built-in security controls such as warnings, sandboxing, or policy enforcement. This SECMONS glossary entry explains how these weaknesses occur, why they are dangerous, and how defenders should interpret them in real-world risk scenarios.